Nokia Secure Access System
October 03, 2005
- Ease of Use:
- Value for Money:
- Overall Rating:
- Strengths: Far more network features than just SSL VPN.
- Weaknesses: Integration with third-party tools like endpoint clients is lacking.
- Verdict: For its low price, a very impressive box indeed.
Being a Nokia network platform, it can be configured to death – most of the networking options can be ignored in environments like our SSL test, but you can do VLANs, quality of service, link aggregation, packet filtering, you name it. Even full-on IPsec, which means this really is an all-round platform with some interesting possibilities. It ships with hardware SSL acceleration.
Initial configuration is done via the console, and once the network is set up, the web GUI takes over. This is a very old-school looking interface – no nonsense and ugly, but very practical. We liked it a lot, apart from the box starting with insecure access by default. Unencrypted http and telnet? Oh dear.
Starting the SSL VPN service actually means using an entirely different interface, which cleverly moves the normal Nokia GUI to a different port. Neat, if your remote administrators are expecting it. We prefer to choose interface and port assignments.
We liked the ability to import and export configurations as plain text files, as well as user lists.
The SSL VPN services are comprehensive. Every user and group can be configured to access specific web, file, email and port forwarding resources. A handy single sign-on feature is provided, but strangely does not synchronize with the actual user login page, so the user has to login in at least twice to use it.
The endpoint security scans are easy to configure: a Java agent checks for specific files, and has preconfigured profiles for specific AV engines. And you can custom-build variables that can be passed to and from scripts.
A secure connector provides tunneling, with an option for a client firewall to prevent bridging across a split tunnel. A secure workspace cleans up files after the connection is terminated.
We were not surprised to see a good offering from Nokia. Maybe some specific application support for other products is missing, but we were able to conduct all our tests without fuss, and liked the presentation very much.
SC Webcasts UK
Information Security Manager
Infosec People - Hammersmith, West London
Junior Penetration Tester, Hertfordshire, to £35k + benefits
Infosec People - England, Hertfordshire
Cyber Security Architect
CYBER EXECS - London (Greater)
SOC Analyst, Aldershot, £47-56k + package
Infosec People - Hampshire, England, Aldershot
Senior Security Engineer
Loveworklife Recruitment - United Kingdom
Sign up to our newsletters
SC Magazine UK Articles
- Tesco Bank allegedly ignored warnings of hack from Visa
- Investigatory Powers and Digital Economy Bills could threaten economy
- Updated: A million German routers knocked offline by failed Mirai botnet attack
- Microsoft update left Azure Linux virtual machines open to hacking
- Gooligan ad fraud malware infects 1.3M Android users, installs over 2M unwanted apps
- SC Awards Europe 2016 winners announcements!
- ISIS radicalises 'lone wolves' through strong social media presence
- Updated: How will Brexit affect the cyber-security industry in UK and Europe?
- ICYMI: CEO Sacked; MS Zero-day; Passwords dropped; Ransomware wild, charging hack
- 9.2 million medical records for sale on darkweb
- ICYMI: Tesco warned; IP Bill threatens economy; German routers offline; Azure trojan; Gooligan fraud
- Data centres are on the move - where will they end up?
- 90% of ITDMs believe IAM is crucial to digital transformation success
- Research: Hacked companies could see customer exodus if breached
- Misconfigured drive exposes locations of explosives used by oil industry